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DETAILED ACTION 



1. Claims 1-49 have been re-examined. This is a Non-Final rejection. 

2. Claims 1-8, 15-22, and 26-49 remains rejected under 35 U.S.C. 102(b). 

3. Claims 9-14, and 23-25 is rejected under 35 U.S.C. 103(a). 

4. Response to argument. 



The following is a quotation of the appropriate paragraphs of 35 U.S.C. 102 that 
form the basis for the rejections under this section made in this Office action: 
A person shall be entitled to a patent unless - 

(b) the invention was patented or described in a printed publication in this or a foreign country or 
in public use or on sale in this country, more than one year prior to the date of application for 
patent in the United States. 

5. Claims 1-8, 15-22, and 26-49 are rejected under 35 U.S.C. 102(b) as 
being anticipated by Mittra (US 5,748,736). 
As per claim 1: 

Mittra teaches a method of implementing multicast security (col.6, lines 
56-61) in a given multicast domain, the given multicast domain having one or 
more network devices, the method comprising: [see FIGs.1-3, shows multiple 
multicast networks (domains) having the servers (network devices)] 

receiving multicast traffic that is encrypted with a global key [col.9, lines 
48-67; Mittra discusses that the multicast messages must be encrypted 
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when being sent to the given multicast group (domains) from the senders], 

the global key being available to the given multicast domain and one or more 
other multicast domains; [col.6, lines 2-66; the secure multicast group is 
controlled by a single group security controller (GSC) of FIG. 1-3 which 
shows the multicast group is not being referred as one domain but implies 
that the group consists of multiple multicast networks (domains). Thus 
concludes that the group key is for the given one domain and other 
multiple domains] 

decrypting the receive multicast traffic with the global key to produce 
decrypted multicast traffic; [col. 10, lines 48-50[ 

encrypting the decrypted multicast traffic with a local key to produce 
local encrypted multicast traffic, the local key being available to the given 
multicast domain; and [col. 10, lines 20-21 and lines 48-51] 

forwarding the local encrypted multicast traffic to the one or more 
network devices in the given multicast domain, (col. 12, lines 55-59) 
As per claim 2: See col. 9, lines 63-65; discusses receiving a global key 
message that identifies the global key. 

As per claim 3: See col. 12, lines 39-59; discusses local encrypted multicast 
traffic is forwarded to all of the network devices in the given multicast domain. 
As per claim 4: See col. 5, lines 1-3 and col. 13, lines 4-7; discusses the 
local encrypted multicast traffic is forwarded to a subset of the network devices 
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in the given multicast domain, the subset of network devices being identified in 
a multicast message. 

As per claim 5: See col. 10, lines 45-52 and col. 12, lines 55-59; discussing 
thee local key is only available to the given multicast domain. 
As per claim 6: See col.7, lines 1-13; discusses the given multicast domain 
is a protocol independent multicast domain. 

As per claim 7: See col. 6, line 39 thru col.7, line 13; discusses the given 
multicast domain is a group of contiguous protocol independent multicast 
domains. 

As per claim 8: See col. 6, lines 4-15; discusses the given multicast domain 
is part of a Multicast Source Discovery Protocol backbone. 
As per claim 15: 

A method of implementing multicast security in a network, the method 
comprising: 

encrypting multicast traffic with a global key [col. 9, lines 48-67; Mittra 
discusses that the multicast messages must be encrypted when being sent 
to the given multicast group (domains) from the senders], the global key 
being available to the given multicast domain and one or more multicast 
domains; [col. 6, lines 2-66; the secure multicast group is controlled by a 
single group security controller (GSC) of FIG. 1-3 which shows the 
multicast group is not being referred as one domain but implies that the 
group consists of multiple multicast networks (domains). Thus concludes 
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that the group key is for the given one domain and other multiple 
domains] 

forwarding the global encrypted multicast traffic to the given multicast 
domain; [col. 9, lines 64-65] 

receiving the global encrypted multicast traffic at the given multicast 
domain; [col. 10, lines 18-20] 

decrypting, at the given multicast domain, the global encrypted multicast 
traffic with the global key to produce decrypted multicast traffic; [col. 10, lines 
48-50] 

encrypting, at the given multicast domain, the decrypted multicast traffic 
with a local key to produce local encrypted multicast traffic, the local key being 
available to the given multicast domain; and [col. 10, lines 20-21 and lines 
48-51] 

forwarding the local encrypted multicast traffic to the one or more 
network devices in the given multicast domain, [col. 12, lines 55-59] 
As per claim 16: See col.9, lines 63-65; discusses receiving at the given 
multicast domain a global key message that identifies the global key. 
As per claim 17: See col.12, lines 39-59; discusses the local encrypted 
multicast traffic is forwarded to all of the network devices in the given 
multicast domain. 

As per claim 18: See col. 5, lines 1-3 and col. 13, lines 4-7; discusses the 
local encrypted multicast traffic is forwarded to a subset of the network devices 
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in the given multicast domain, the subset of network devices being identified in 
a multicast message. 

As per claim 19: See col. 10, lines 45-52 and col. 12, lines 55-59; discusses 
the local key is only available to the given multicast domain. 
As per claim 20: See col.7, lines 1-13; discusses the given multicast domain 
is a protocol independent multicast domain. 

As per claim 21: See col.6, line 39 thru col.7, line 13; discusses the given 
multicast domain is a group of contiguous protocol independent multicast 
domains. 

As per claim 22: See col.6, lines 4-15; discusses the given multicast domain 
is part of a Multicast Source Discovery Protocol backbone. 
As per claim 26: 

Mittra an apparatus for implementing multicast security in a given 
multicast domain, the given multicast domain having one or more network 
devices, the apparatus comprising: 

a receiver for receiving multicast traffic that is encrypted with a global 
key [col.9, lines 48-67; Mittra discusses that the multicast messages must 
be encrypted when being sent to the given multicast group (domains) from 
the senders], the global key being available to the given multicast traffic with 
the global key to produce decrypted multicast traffic; [col.6, lines 2-66; the 
secure multicast group is controlled by a single group security controller 
(GSC) of FIG. 1-3 which shows the multicast group is not being referred as 
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one domain but implies that the group consists of multiple multicast 
networks (domains). Thus concludes that the group key is for the given 
one domain and other multiple domains] 

a deciyptor for decrypting the receive multicast traffic with the global key 
to produce decrypted multicast traffic [col. 10, lines 48-50] 

an encryptor for encrypting the decrypted multicast traffic with a local 
key to produce local encrypted multicast traffic, the local key being available to 
the given multicast domain; and [col. 10, lines 20-21 and lines 48-51] 

a traffic forwarder for forwarding the local encrypted multicast traffic to 
the one or more network devices in the given multicast domain, [col. 12, lines 
40-53] 

As per claim 27: See coL9, lines 63-65; discusses a second receiver for 
receiving a global key message that identifies the global key. 
As per claim 28: See coL12, lines 39-59; discusses the local encrypted 
multicast traffic is forwarded to all of the network devices in the given 
multicast domain. 

As per claim 29: See col. 5, lines 1-3 and col. 13, lines 4-7; discusses the 
local encrypted multicast traffic is forwarded to a subset of the network devices 
in the given multicast domain, the subset of network devices being identified in 
a multicast message. 

As per claim 30: See ol.lO, lines 45-52 and col. 12, lines 55-59; discusses 
the local key is only available to the given multicast domain. 
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As per claim 31: See col.7, lines 1-13; discusses the apparatus according to 
claim 26 wherein the given multicast domain is a protocol independent 
multicast domain. 

As per claim 32: See coL6, line 39 thru col.7, line 13; discusses the given 
multicast domain is a group of contiguous protocol independent multicast 
domains. 

As per claim 33: See coL6, lines 4-15; discusses the given multicast domain 
is part of a Multicast Source Discovery Protocol backbone. 
As per claim 34: 

Mittra teaches a computer program product for implementing multicast 
security in a given multicast domain, the given multicast domain having one or 
more network devices, the computer comprising: 

program code for receiving multicast traffic that is encrypted with a 
global key [col. 9, lines 48-67; Mittra discusses that the multicast messages 
must be encrypted when being sent to the given multicast group 
(domains) from the senders], the global key being available to the given 
multicast traffic with the global key to produce decrypted multicast traffic; 
[col.6, lines 2-66; the secure multicast group is controlled by a single 
group security controller (GSC) of FIG. 1-3 which shows the multicast 
group is not being referred as one domain but implies that the group 
consists of multiple multicast networks (domains). Thus concludes that 
the group key is for the given one domain and other multiple domains] 
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program code for decrypting the receive multicast traffic with the global 
key to produce decrypted multicast traffic [col. 10, lines 48-50] 

program code for encrypting the decrypted multicast traffic with a local 
key to produce local encrypted multicast traffic, the local key being available to 
the given multicast domain; and [col. 10, lines 20-21 and lines 48-51] 

program code for forwarding the local encrypted multicast traffic to the 
one or more network devices in the given multicast domain. [col. 12, lines 40- 
53] 

As per claim 35: See col.9, lines 63-65; discusses a program code for 
receiving a global key message that identifies the global key. 
As per claim 36: See col. 12, lines 39-59; discloses the local encrypted 
multicast traffic is forwarded to all of the network devices in the given 
multicast domain. 

As per claim 37: See col.5, lines 1-3 and col. 13, lines 4-7; discusses the 
local encrypted multicast traffic is forwarded to a subset of the network devices 
in the given multicast domain, the subset of network devices being identified in 
a multicast message. 

As per claim 38: See col.10, lines 45-52 and col. 12, lines 55-59; discusses 
the local key is only available to the given multicast domain. 
As per claim 39: See col.7, lines 1-13; discusses the given multicast domain 
is a protocol independent multicast domain. 



Application/ Control Number: 09/474,203 Page 10 

Art Unit: 2135 

As per claim 40: See col.6, line 39 thru col.7, line 13; discusses the given 
multicast domain is a group of contiguous protocol independent multicast 
domains. 

As per claim 41: See col.6, lines 4-15; discusses the given multicast domain 
is part of a Multicast Source Discovery Protocol backbone. 
As per claim 42: 

Mittra teaches an apparatus of implementing multicast security in a 
network, the apparatus comprising: 

means for encrypting multicast traffic with a global key [col. 9, lines 48- 
67; Mittra discusses that the multicast messages must be encrypted when 
being sent to the given multicast group (domains) from the senders], the 
global key being available to the given multicast domain and one or more 
multicast domains; [col. 6, lines 2-66; the secure multicast group is 
controlled by a single group security controller (GSC) of FIG. 1-3 which 
shows the multicast group is not being referred as one domain but implies 
that the group consists of multiple multicast networks (domains). Thus 
concludes that the group key is for the given one domain and other 
multiple domains] 

means for forwarding the global encrypted multicast traffic to the given 
multicast domain; [col. 10, lines 15-19] 

means for receiving the global encrypted multicast traffic at the given 
multicast domain; [col. 13, lines 4-7] 
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means for decrypting, at the given multicast domain, the global 
encrypted multicast traffic with the global key to produce decrypted multicast 
traffic; [col. 10, lines 48-50] 

means for encrypting, at the given multicast domain, the decrypted 
multicast traffic with a local key to produce local encrypted multicast traffic, 
the local key being available to the given multicast domain; and 
[col. 10, lines 20-21 and lines 45-52] 

means for forwarding the local encrypted multicast traffic to the one or 
more network devices in the given multicast domain. [coL12, lines 40-53] 
As per claim 43: See col.9, lines 63-65; discusses receiving at the given 
multicast domain a global key message that identifies the global key. 
As per claim 44: See col. 12, lines 39-59; discusses the local encrypted 
multicast traffic is forwarded to all of the network devices in the given 
multicast domain. 

As per claim 45: See col. 5, lines 1-3 and col. 13, lines 4-7; discusses the 
local encrypted multicast traffic is forwarded to a subset of the network devices 
in the given multicast domain, the subset of network devices being identified in 
a multicast message. 

As per claim 46: See col. 10, lines 45-52 and col. 12, lines 55-59; discusses 
the local key is only available to the given multicast domain. 
As per claim 47: See col.7, lines 1-13; discusses the given multicast domain 
is a protocol independent multicast domain. 
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As per claim 48: See col.6, line 39 thru col.7, line 13; discusses the given 
multicast domain is a group of contiguous protocol independent multicast 
domains. 

As per claim 49: See col.6, lines 4-15; discusses the given multicast domain 
is part of a Multicast Source Discovery Protocol backbone. 

Claim Rejections - 35 USC §103 

The following is a quotation of 35 U.S.C. 103(a) which forms the basis for all 

obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or 
described as set forth in section 102 of this title, if the differences between the subject 
matter sought to be patented and the prior art are such that the subject matter as a whole 
would have been obvious at the time the invention was made to a person having ordinary 
skill in the art to which said subject matter pertains. Patentability shall not be negatived by 
the manner in which the invention was made. 

6. Claims 9-14 and 23-25 are rejected under 35 U.S.C. 103(a) as being 

unpatentable by Haggerty, Et Al. (US 6,049,878) in further view of "The 

Microsoft Computer Dictionary, 5 th Edition". 

As per claim 9: 

Haggerty, Et. Al. teaches a method of implementing multicast security in a 
given multicast domain, the method comprising receiving multicast traffic with 
a global key [col. 23, lines 30-40], the global key being available to the given 
multicast domain and one or more other multicast domains [col. 11, lines 38- 
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56 and col.21, lines 46-59]. Haggerty discusses sending packets (containing a 
destination address) to the group address corresponding to the multicast group 
indicates the multicast group consists of more than one domain. Haggerty 
determines that the given multicast domain contain no network devices 
interested in the received multicast traffic [coL31, lines 35-40]; and sends a 
terminate message to no longer forward the received multicast traffic to the give 
multicast domain [col.31, line 42 thru col.32, line 15]. However, Haggerty 
did not fully include encryption for the multicast traffic with the global key. 

"The Microsoft Computer Dictionary, 5 th Edition" discloses encryption 
prevents unauthorized access because it is in an unreadable form which 
usually based on one or more keys to decode to become readable form 
[pg.192]. 

Therefore, it would have been obvious of one of the ordinary skill in the 
art to combine the teachings of Haggerty with "The Microsoft Computer 
Dictionary, 5 th Edition", to receive the multicast traffic encrypted with a global 
key because the multicast traffic with the global key is in unreadable form that 
would prevent unauthorized access. 

As per claim 10: See col.23, lines 30-40; Haggerty discusses receiving a 
global key message that identifies the global key. 
As per claim 11: 

Haggerty discusses determining, after having sent the terminate message, that 
the given multicast domain contains one or more network devices interested in 
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the received multicast traffic [col. 29, lines 50-52) and sending a resume 
message to once again forward the received multicast traffic to the given 
multicast domain, [col. 29, lines 52-54] 

As per claim 12: See col. 14, lines 28-52; discusses the given multicast 
domain is a protocol independent multicast domain. 

As per claim 13: See col.14, lines 28-52; discusses the given multicast 
domain is a group of contiguous protocol independent multicast domains. 
As per claim 14: See col.ll, lines 38-63; discusses the given multicast 
domain is part of a Multicast Source Discovery Protocol backbone. 
As per claim 23: 

Haggerty teaches a method of implementing multicast security in a given 
multicast domain comprising receiving multicast traffic that is encrypted with a 
global key, the global key being available to the give multicast domain and one 
or more other multicast domains [col.ll, lines 38-56 and col.21, lines 46- 
59]. Haggerty discusses sending packets (containing a destination address) to 
the group address corresponding to the multicast group indicates the multicast 
group consists of more than one domain. Haggerty discusses constructing in 
response to the received multicast traffic, an information message that alerts 
other multicast domains of the security capabilities of the give multicast 
domain [col. 29, lines 25-26] and forwarding the information message to at 
least one other multicast domain [col.29, lines 27-32]. However, Haggerty did 
not fully include encryption for the multicast traffic with the global key. 
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"The Microsoft Computer Dictionary, 5 th Edition" discloses encryption 
prevents unauthorized access because it is in an unreadable form, which 
usually based on one or more keys to decode to become readable form 
[pg.192]. 

Therefore, it would have been obvious of one of the ordinary skill in the 
art to combine the teachings of Haggerty with "The Microsoft Computer 
Dictionary, 5 th Edition", to receive the multicast traffic encrypted with a global 
key because the multicast traffic with the global key is in unreadable form that 
would prevent unauthorized access. 

As per claim 24: See col. 14, lines 28-52; discusses the information message 
is a part of a multicast protocol message. 

As per claim 25: See coL29, lines 20-32; discusses one or more bits in one 
or more fields of the multicast protocol message are set to alert other multicast 
domains of the security capabilities of the give multicast domain. 

Response to Arguments 

Mittra discloses a system for secure group communications via multicast 
transmission (col. 59-62) wherein the senders must encrypt the multicast 
messages when being sent to the given multicast group (col. 9, lines 48-67) and 
further discusses the secure multicast group is controlled by a single group 
security controller (GSC of FIG. 1-3), which shows the multicast group is not 
being referred to as one of the multicast networks (domain) but implies that the 
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group consists of multiple multicast networks. Thus concludes that the group 
key is for the given one domain and other multiple domains (col.6, lines 2-66). 
In addition, as known in the art, a domain is a collection of computers that 
share a common database and security policy and the term network is a group 
of computers and associated devices. Hence, a domain and a network both 
comprises plurality of computers and Mittra's multicast group consists of 
networks/ domains that share a common database and security policy, which 
involves maintaining the security of the group by authenticating and 
authorizing all other members of the multicast as well as managing the group 
keys that are used to encrypt the messages multicast to the group (see 
abstract). Applicant argues about the key being unique to a single sender and 
the GSC, where the Examiner finds that irrelevant to the claim language. The 
claim language broadly states receiving the global key for the given domain and 
one or more other domains, which reads the key, is for amongst the multiple 
domains. Hence, does not read the key is "explicitly described as being unique 
to a single sender and the GSC" (see FIG. 2). However, for clarification 
purposes, Mittra does disclose plurality of senders and the keys discussed on 
col. 9, lines 59-62 are just "choices for the value of this key". 

For further details for the cited rejection above, please refer to: 
Mittra: col.4, line 6...ET. Seq. 
Haggerty, Et. Al: col. 7, line 24... ET. Seq. 
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Conclusion 



Any inquiry concerning this communication or earlier communications 
from the examiner should be directed to LEYNNA T. HA whose telephone 
number is (703) 305-3853. The examiner can normally be reached on Monday 
- Thursday (7:00 - 5:00PM). 

If attempts to reach the examiner by telephone are unsuccessful, the 
examiner's supervisor, Kim Vu can be reached on (703) 305-4393. The fax 
phone number for the organization where this application or proceeding is 
assigned is 703-872-9306. 

Information regarding the status of an application may be obtained from 
the Patent Application Information Retrieval (PAIR) system. Status information 
for published applications may be obtained from either Private PAIR or Public 
PAIR. Status information for unpublished applications is available through 
Private PAIR only. For more information about the PAIR system, see 
http://pair-direct.uspto.gov. Should you have questions on access to the 
Private PAIR system, contact the Electronic Business Center (EBC) at 866-217- 



9197 (toll-free). 
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